{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a333197b-f630-5fca-acb9-0bf58625346e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9-tuxcare.2", "type": "library", "group": "org.apache.hive", "name": "hive-llap-common", "version": "2.3.9-tuxcare.2", "purl": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3d9767a1-7cb1-57e4-86d6-1c3286ebd883", "id": "CVE-2020-13949", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-13949 is fixed in version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-common." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:af56d2c8-1c66-57d2-a724-6228d4e21953", "id": "CVE-2021-34538", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34538 is fixed in version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-common." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:710e194d-1a8e-5ce2-a69f-681bd2d79329", "id": "CVE-2024-23945", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23945 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-common." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ab1cc6f1-fc41-5f17-bf75-9288a8a7df58", "id": "CVE-2024-23953", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23953 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-common." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b7c02bad-4f6d-5db0-9bce-f65113c6dbce", "id": "CVE-2024-29869", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29869 is fixed in version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-common." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:495a9dcf-35e5-57c4-95e4-ed4bbf4cdaa3", "id": "CVE-2024-45384", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45384 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-common." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9fee6397-1f38-5292-9643-0a1488e7c708", "id": "CVE-2024-45537", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45537 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-common." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b62a86b9-8837-5c30-b26b-b20d27359103", "id": "CVE-2025-27888", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27888 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-common." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e801566b-718c-5f0d-ae06-57becac64050", "id": "CVE-2025-59390", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59390 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-common." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:acd0a318-b138-5496-8a61-1d257327a692", "id": "CVE-2026-23906", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-23906 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-common." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9-tuxcare.2" } ] }